Hardware/Firmware Security Developer R&D (H/F)

Eviden, part of the Atos Group, with an annual revenue of circa € 5 billion, is a global leader in data-driven, trusted, and sustainable digital transformation. As a next-generation digital business with worldwide leading positions in digital, cloud, data, advanced computing, and security, it brings deep expertise across all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 47,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come.

Product Security increasingly relies on cryptographic keys to secure firmware and management software. Each new chip features hardware security mechanisms supporting secure boot and firmware upgrades. As an integrator of these chips, a vendor must maintain a consistent approach to these security features, from design and development to manufacturing. Protecting vendor keys is crucial for supply chain security and customer trust. To ensure high security levels, hardware security modules (HSMs) are mandatory in the development infrastructure. They are used to provision unique device secrets during manufacturing of Eviden products, including BullSequana servers, Edge to Enterprise solutions, High-Performance Computing (HPC), and Quantum Learning Machine (QLM).

• The Product Managers responsible for product delivery to customers.
• Product R&D teams to facilitate integration of security features.
• The Hardware Security Architect overseeing product security specifications.

• Implement security features in Eviden’s products according to the development roadmap.
• Contribute to developing and maintaining the proxy framework around HSMs, interacting with various development frameworks.
• Propose validation and non-regression tests to maintain security features across firmware updates.

• Knowledge of scripting languages, especially Bash.
• Knowledge of cryptographic key manipulation with tools like OpenSSL.
• Understanding of Public Key Infrastructure (PKI).
• Familiarity with hardware security features such as HSM, TPM, TEE, Roots and Chains of trust, device attestation, UEFI Secure Boot, etc.
• Fluent in written and spoken English.

• Knowledge of pkcs11-tool and PKCS11 interface.
• Knowledge of BIOS and BMC.
• Understanding of cybersecurity tools and best practices.
• Experience in cybersecurity, including access control, encryption, vulnerability management, and event analysis.

Let’s grow together.